Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/uIkUiSknFwM2Foj2IOkfxw3dJNk.roa
File: uIkUiSknFwM2Foj2IOkfxw3dJNk.roa (raw, json)
Hash identifier: sNFt5cuRrV47y8z591EvjsoN1f4Qp8JRelxFEPFxMBw=
Subject key identifier: B8:89:14:89:29:27:17:03:36:16:88:F6:20:E9:1F:C7:0D:DD:24:D9
Certificate issuer: /CN=103cecccb1c2706a1ff3507627a9080f24a2feeb
Certificate serial: AA3109
Authority key identifier: 10:3C:EC:CC:B1:C2:70:6A:1F:F3:50:76:27:A9:08:0F:24:A2:FE:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDzszLHCcGof81B2J6kIDySi_us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/uIkUiSknFwM2Foj2IOkfxw3dJNk.roa
Signing time: Sat 01 Jan 2022 12:55:23 +0000
ROA not before: Sat 01 Jan 2022 12:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 262287
IP address blocks: 5.44.248.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11153673 (0xaa3109)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=103cecccb1c2706a1ff3507627a9080f24a2feeb
Validity
Not Before: Jan 1 12:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b889148929271703361688f620e91fc70ddd24d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e9:bf:5f:07:b7:43:d8:93:b7:42:dc:87:b2:
0d:10:28:fe:b0:51:f0:81:75:ad:4e:4c:1d:5c:20:
6e:87:59:8e:ff:f9:4d:94:a5:f4:0a:f6:dd:ff:60:
b9:ba:05:a2:03:49:c6:06:32:23:e2:b4:26:89:d1:
30:61:fa:16:5f:7d:45:8c:c0:41:42:04:be:81:bb:
c1:93:ed:e8:4c:56:d0:69:02:86:7f:42:dd:f6:52:
cf:62:0d:cb:30:70:18:45:bd:4a:01:12:cd:ff:19:
fd:fc:7a:c5:9a:fe:b9:98:9d:e8:6a:ab:4c:41:61:
12:cf:d0:7e:30:5e:85:f9:49:36:87:1a:e6:39:f5:
9d:98:6a:77:f4:68:6c:f2:26:73:46:fa:4b:65:69:
a3:83:fb:58:b3:be:df:81:6b:9f:3d:20:fc:dd:d9:
68:55:90:c3:83:a1:45:96:1f:df:56:7e:aa:69:d8:
69:69:c3:3f:1f:42:ab:33:93:fa:44:2a:0e:fd:95:
72:e0:e5:43:20:96:ec:40:44:d3:99:21:b0:eb:bd:
67:da:91:c3:78:13:d3:3d:d9:5e:c5:30:21:d2:31:
da:0d:08:e4:d3:d7:29:5e:de:49:29:91:54:c7:26:
e5:8f:a5:6d:48:35:e1:46:a7:98:9f:6b:6e:fd:9e:
cc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:89:14:89:29:27:17:03:36:16:88:F6:20:E9:1F:C7:0D:DD:24:D9
X509v3 Authority Key Identifier:
keyid:10:3C:EC:CC:B1:C2:70:6A:1F:F3:50:76:27:A9:08:0F:24:A2:FE:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDzszLHCcGof81B2J6kIDySi_us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/uIkUiSknFwM2Foj2IOkfxw3dJNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d3d7d4-2aa9-4e91-827f-77657756595c/1/EDzszLHCcGof81B2J6kIDySi_us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.248.0/24
Signature Algorithm: sha256WithRSAEncryption
17:3a:f1:cc:e8:93:30:f4:3e:1f:dd:f0:3c:c3:7e:d9:73:ce:
c1:ca:61:ac:3f:1a:47:47:38:d0:35:99:57:9c:87:cf:f3:57:
56:a5:78:d8:e1:ef:96:2f:6e:74:37:be:a2:88:f6:7c:39:2a:
cb:f8:a0:b9:04:7c:02:fa:7f:50:a2:e5:ce:cd:2a:40:ed:cd:
3a:c6:6a:7c:1f:57:aa:c3:f9:d4:15:cb:c4:e7:54:52:fe:fb:
8e:6a:e9:db:d4:6f:1b:98:e5:2a:c7:27:9c:fa:be:94:c5:4b:
53:3c:70:91:2e:1c:52:ff:68:62:c2:fb:de:58:2f:4f:64:ef:
9c:4f:b7:dd:e8:97:b3:54:c4:b3:3e:3e:2b:f5:a9:d1:6e:e8:
01:5e:c2:1e:66:04:ec:ee:dc:76:4d:1c:91:53:e7:29:96:e5:
3f:8f:b1:20:61:a8:37:72:79:bd:76:af:7d:be:70:5f:81:75:
4b:25:15:5a:98:dd:a1:59:99:8f:07:f1:ff:9a:49:35:08:31:
0c:b1:09:39:c6:69:ae:d4:e7:35:4a:92:ca:fb:13:e2:90:d3:
cc:25:5f:8b:9a:a0:42:4e:3d:14:f7:f1:26:14:df:77:2a:4f:
7d:7b:75:48:74:92:51:78:3a:fd:87:bf:0b:08:4c:51:ba:68:
3d:77:5f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-fra.rpki-client.org